CVE-2025-38126 net: stmmac: make sure that ptp_rate is not 0 before configuring timestamping
Published December 19, 2025
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2025-38118 Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete
Published December 19, 2025
Information published.
CVE-2025-38074 vhost-scsi: protect vq->log_used with vq->mutex
Published December 19, 2025
Information published.
CVE-2025-38071 x86/mm: Check return value from memblock_phys_alloc_range()
Published December 19, 2025
Information published.
CVE-2025-38067 rseq: Fix segfault on registration when rseq_cs is non-zero
Published December 19, 2025
Information published.
CVE-2025-38063 dm: fix unconditional IO throttle caused by REQ_PREFLUSH
Published December 19, 2025
Information published.
CVE-2025-37951 drm/v3d: Add job to pending list if the reset was skipped
Published December 19, 2025
Information published.
Chromium: CVE-2025-14766 Use after free in WebGPU
Published December 19, 2025
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2025-14765 Out of bounds read and write in V8
Published December 19, 2025
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
CVE-2025-37961 ipvs: fix uninit-value for saddr in do_output_route4
Published December 18, 2025
Information published.
